While the majority of the traditional cybersecurity solutions are focused on stopping malware, the threat landscape has moved on. In fact, 40% of all attacks in 2018 were non-malware intrusions indicating malicious activity that would typically go undetected by legacy anti-virus. (By Zeki Turedi, InfoSecurity Magazine)
I've seen a number of reports over the past few months saying that ransomware attacks are on the decline. The IBM X-Force Threat Intelligence Index, for example, saw a significant drop in ransomware, as cybercriminals aren’t using this type of attack as the primary vector for financial gain. (By Sue Poremba, Security Boulevard)
Microsoft is warning Windows 10 users to update their operating system immediately because of two "critical" vulnerabilities. The company said the vulnerabilities are potentially "wormable," meaning affected computers could spread viruses and malware without any action on the user's part. (By Jordan Valinsky, CNN)
Should every company train its employees on cybersecurity? Modern businesses depend on data and confidential information completely and this data nearly always is managed by people. So if your staff is unaware of the latest types of cyberattacks and basic rules of information security, your company is practically powerless and extremely vulnerable to data breaches. (By Vera Salauyova, Cyber Defense Magazine)
As demonstrated by the €183 million fine facing British Airlines, data privacy issues and corresponding regulations are some of the greatest challenges that companies face today. While companies affected by the GDPR have felt the initial wave of fines, requirements, and standards, privacy is now an international issue. (By Kyle Schryver, CPO Magazine)
At Black Hat USA 2019, researchers showed how a previously-disclosed flaw on Windows systems that could allow arbitrary code execution could also impact Hyper-V. (By Lindsey O’Donnell, Threatpost)